Editor’s Picks

Moodle LMS security leaves 1000’s of servers vulnerable

By eLearning Inside
August 09, 2017

Breaking news from TechTarget:

A series of logic flaws in Moodle enabled attackers to remotely execute code on servers. Expert Michael Cobb explains how the Moodle security vulnerability can be exploited.

Moodle lms security vulnerability

A vulnerability found in Moodle, an open source, PHP-based learning management system used by tens of thousands of universities internationally, left servers and their data open to compromise. According to the researcher that discovered the issue, the Moodle security vulnerability is actually made up of several small flaws, and it can enable attackers to execute PHP code on related servers. What does this vulnerability entail, and what can be done about it?

Netanel Rubin, security researcher and CEO of Vaultra, found that by exploiting a series of minor vulnerabilities, he could chain them together to remotely execute code on a server running Moodle.

Read the rest of this story at TechTarget (registration required).

2 Comments

  1. This situation has pros and cons .
    It seems to see the teacher on the screen is something effective. Most teachers say so . Even they say ” eye contact is important ”

    To have correspondes with teacher and peers
    To have forums
    To have cohort online asynchronous courses are fine
    They are much easier to manage than synchronous ones . Synchronous does not have the value corresponding to its expenses end problems .
    So please cohort
    Please forums
    BUT MOST important from top schools valued courses and knowledge . Plus low cost .
    See Georgia Tech . If Georgia Tech can do it everyone can do it .
    Self paced courses are also good but cohorts are much better and does not have too much expense either .
    So let us go cohort + forums .

Leave a Reply